Oval Definition:	oval:org.opensuse.security:def:57936
Revision Date: 2021-06-08 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: - Fix OOB access during mmio operations (CVE-2020-13754, bsc#1172382) - Fix out-of-bounds read information disclosure in icmp6_send_echoreply (CVE-2020-10756, bsc#1172380) - Fix out-of-bound heap buffer access via an interrupt ID field (CVE-2021-20221, bsc#1181933) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2021-20257, bsc#1182846, CVE-2021-3419, bsc#1182975, bsc#1094725) Family: unix Class: patch Status: Reference(s): 1027565 1028372 1030573 1052916 1056427 1068032 1075087 1077355 1080157 1081741 1083424 1086036 1087082 1090953 1091041 1092289 1093215 1094019 1094725 1096723 1098531 1100097 1102682 1103411 1105323 1106191 1111853 1117080 1120644 1122191 1130324 1133191 1135902 1136446 1137597 1139083 1140402 1143794 1149294 1149295 1149296 1149297 1149298 1149299 1149303 1149304 1149324 1149813 1160048 1160968 1163019 1172380 1172382 1175534 1178683 1178935 1179477 1181933 1182846 1182975 CVE-2011-4182 CVE-2013-4143 CVE-2015-1142857 CVE-2017-2636 CVE-2017-2885 CVE-2017-7184 CVE-2018-1000026 CVE-2018-1050 CVE-2018-10858 CVE-2018-10902 CVE-2018-10938 CVE-2018-12327 CVE-2018-12910 CVE-2018-17954 CVE-2018-20406 CVE-2018-3639 CVE-2018-5390 CVE-2018-7170 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11753 CVE-2019-12155 CVE-2019-12900 CVE-2019-13164 CVE-2019-14378 CVE-2019-15890 CVE-2019-16770 CVE-2019-3846 CVE-2019-5010 CVE-2019-9812 CVE-2019-9924 CVE-2020-10756 CVE-2020-13754 CVE-2020-14364 CVE-2020-25707 CVE-2020-25723 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2020-29130 CVE-2020-8608 CVE-2021-20221 CVE-2021-20257 CVE-2021-3419 SUSE-SU-2017:0864-1 SUSE-SU-2018:0674-1 SUSE-SU-2018:1377-1 SUSE-SU-2018:2204-2 SUSE-SU-2018:2339-1 SUSE-SU-2018:3342-1 SUSE-SU-2019:0243-1 SUSE-SU-2019:0838-2 SUSE-SU-2019:1668-1 SUSE-SU-2019:2013-1 SUSE-SU-2019:2157-1 SUSE-SU-2019:2436-1 SUSE-SU-2020:0311-1 SUSE-SU-2020:0628-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information cron-4.2-lp150.2 is installed OR cronie-1.5.1-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND dosbox-0.74.3-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_96-default-11-2 is installed OR kgraft-patch-3_12_74-60_64_96-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_29-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information sysconfig-0.84.0-13 is installed OR sysconfig-netconfig-0.84.0-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gpg2-2.0.24-8 is installed OR gpg2-lang-2.0.24-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information qemu-2.9.1-6.50.1 is installed OR qemu-arm-2.9.1-6.50.1 is installed OR qemu-block-curl-2.9.1-6.50.1 is installed OR qemu-block-iscsi-2.9.1-6.50.1 is installed OR qemu-block-rbd-2.9.1-6.50.1 is installed OR qemu-block-ssh-2.9.1-6.50.1 is installed OR qemu-guest-agent-2.9.1-6.50.1 is installed OR qemu-ipxe-1.0.0+-6.50.1 is installed OR qemu-kvm-2.9.1-6.50.1 is installed OR qemu-lang-2.9.1-6.50.1 is installed OR qemu-seabios-1.10.2_0_g5f4c7b1-6.50.1 is installed OR qemu-sgabios-8-6.50.1 is installed OR qemu-tools-2.9.1-6.50.1 is installed OR qemu-vgabios-1.10.2_0_g5f4c7b1-6.50.1 is installed OR qemu-x86-2.9.1-6.50.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libspice-client-glib-2_0-8-0.33-3.6 is installed OR libspice-client-glib-helper-0.33-3.6 is installed OR libspice-client-gtk-3_0-5-0.33-3.6 is installed OR libspice-controller0-0.33-3.6 is installed OR spice-gtk-0.33-3.6 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libkpathsea6-6.2.0dev-22.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-haml-4.0.6-3.3 is installed OR rubygem-haml-4.0.6-3.3 is installed
BACK